888rat | 23d23ede447193122acb545e6cff008d385b13d814a36c678db965d4e053a87a | Triage

Submit
Reports

Overview

overview

Static

static

TikTok#.apk

android-13-x64

Sharing

General

Target

TikTok#.apk
Size

3.3MB
Sample

240913-xe59vasgne
MD5

c0dc87eb093913aac099e6e52ea810df
SHA1

a70863d6fb7564e81d4867165e9381d9cd2d86a8
SHA256

23d23ede447193122acb545e6cff008d385b13d814a36c678db965d4e053a87a
SHA512

2674afbad0809e95862257d382e8dbeab14f0af4b2757fc0eab422a6bd514c00f758b7455ddcdfcc643e18420b1505a386ced061f217150e29a7cfd52ddf073e
SSDEEP

98304:Z3YTPlToffum+rspiiawHOpMC4oM+vJoeO:Z3YTRsoUiiVHOpMrowB

Score

10^/10

888rat android evasion infostealer persistence rat trojan

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

TikTok#.apk

Resource

android-33-x64-arm64-20240624-en

888rat evasion infostealer persistence rat trojan

android-13-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  TikTok#.apk
- Size
  
  3.3MB
- MD5
  
  c0dc87eb093913aac099e6e52ea810df
- SHA1
  
  a70863d6fb7564e81d4867165e9381d9cd2d86a8
- SHA256
  
  23d23ede447193122acb545e6cff008d385b13d814a36c678db965d4e053a87a
- SHA512
  
  2674afbad0809e95862257d382e8dbeab14f0af4b2757fc0eab422a6bd514c00f758b7455ddcdfcc643e18420b1505a386ced061f217150e29a7cfd52ddf073e
- SSDEEP
  
  98304:Z3YTPlToffum+rspiiawHOpMC4oM+vJoeO:Z3YTRsoUiiVHOpMrowB
Score

10^/10

888rat evasion infostealer persistence rat trojan
- 888RAT
  888RAT is an Android remote administration tool.
  trojan infostealer rat 888rat
- Acquires the wake lock
- Declares services with permission to bind to the system
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
- Requests dangerous framework permissions
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

Privilege Escalation

Defense Evasion

Foreground Persistence

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

888ratevasioninfostealerpersistencerattrojan

© 2018-2024

Terms | Privacy